These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-48958 is a medium-severity vulnerability allowing unauthorized users to create custom fields via webservices endpoints due to an improper access check. The CVE record was published on 2026-07-07T19:16:54.567Z and has not been modified since then. This vulnerability affects Joomla installations and is classified under CWE-284, with a CVSS score of 6.4. Security teams and administrators should asse [truncated]
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-07T19:16:54.440Z and has not been modified since then. This medium-severity vulnerability with a CVSS score of 6.4 involves an improper access check that allows unauthorized users to access com_privacy datasets in Joomla. Security teams should verify if their Joomla installations are affected by thi [truncated]
CVE-2026-48956 is a medium-severity vulnerability with a CVSS score of 6.4. An improper access check allows users to display a list of modules in the frontend. The CVE record was published on 2026-07-07T19:16:54.313Z and has not been modified since then. This vulnerability could potentially lead to unauthorized access to sensitive information. Administrators and users of Joomla systems should be aware of [truncated]
CVE-2026-48955 is a medium-severity vulnerability in Joomla that allows unauthorized users to access workflow stage and transition information due to an improper access check. The vulnerability has a CVSS score of 6.4 and is classified as CWE-284. It affects Joomla deployments, and users with administrative privileges should be aware of this vulnerability and take necessary precautions to prevent unauthor [truncated]
CVE-2026-48954 is a medium-severity vulnerability related to improper validation leading to a generic XSS vector in the language override feature of Joomla. The CVE record was published on 2026-07-07T19:16:54.060Z and has not been modified since then. The NVD entry is currently Received. This vulnerability affects Joomla installations and requires immediate attention to prevent potential attacks. Users sh [truncated]
CVE-2026-48952 is a MEDIUM severity vulnerability with a CVSS score of 5.9, caused by a lack of escaping leading to an XSS vulnerability in the update list view of com_installer. Administrators and users of Joomla should be aware of this vulnerability and take necessary actions to mitigate it. The CVE record was published on 2026-07-07T19:16:53.810Z and has not been modified since then. The vulnerability [truncated]
CVE-2026-48951 is a MEDIUM severity vulnerability with a CVSS score of 5.9. The vulnerability is caused by a lack of escaping, leading to XSS vulnerabilities in modalreturn layouts of various components. This vulnerability affects users of Joomla and could lead to XSS attacks if not patched. The CVE record was published on 2026-07-07T19:16:53.680Z and has not been modified since then.
A vulnerability exists in com_templates due to a lack of escaping, leading to a cross-site scripting (XSS) vulnerability in the file management view. The CVE record was published on 2026-07-07T19:16:53.543Z and has not been modified since then. This vulnerability affects Joomla users and administrators, who should be aware of this issue and take necessary precautions to prevent exploitation. The vulnerabi [truncated]
A vulnerability CVE-2026-48949 was found in an unknown vendor's product. The vulnerability has a CVSS score of 5.9 and is classified as MEDIUM. It is caused by a lack of validation leading to an XSS vulnerability in the MFA management views. Security teams should review and validate input data for MFA management views to prevent potential XSS attacks. The CVE record was published on 2026-07-07T19:16:53.20 [truncated]
CVE-2026-48948 is a medium-severity vulnerability in Joomla's com_contact component. An improper access check allows users to download vCard exports of com_contact contacts that are inaccessible. The CVE record was published on 2026-07-07T19:16:52.800Z and has not been modified since then. This vulnerability could potentially be used to access sensitive contact information. Administrators and users of Joo [truncated]
CVE-2026-48947 is a medium-severity vulnerability allowing privileged users to overwrite media files without editing permissions. The CVE record was published on 2026-07-07T19:16:52.607Z and has not been modified since then. This improper access control vulnerability, reported in Joomla, has a CVSS score of 6.4. Affected administrators and users with privileged access to media management systems should as [truncated]
A cross-site scripting (XSS) vulnerability exists in Joomla! due to inadequate input filtering within the HTML filter's cleanAttributes code. The flaw allows attackers with high privileges to inject malicious scripts through insufficiently sanitized content, potentially compromising user sessions or executing unauthorized actions in victims' browsers. The vulnerability affects Joomla! versions 3.0.0 throu [truncated]
A privilege escalation vulnerability exists in Joomla's com_users component, specifically within the group editing webservice endpoint. The improper access check allows unauthenticated or lower-privileged actors to escalate privileges by manipulating group assignments through the webservice API. The vulnerability affects Joomla 4.0.0 through 5.4.5 and 6.0.0 through 6.1.0. The CVSS 4.0 vector indicates net [truncated]
A cross-site scripting (XSS) vulnerability exists in Joomla! Framework due to inadequate content filtering within the checkAttribute methods. The flaw affects Joomla! versions from 3.0.0 through 5.4.5 and from 6.0.0 through 6.1.0. An attacker with high privileges can exploit this vulnerability to inject malicious scripts, potentially compromising user sessions or performing unauthorized actions. The CVSS [truncated]
## Summary CVE-2026-48902 describes a transport-layer security downgrade in Joomla's password and username reset functionality. When the application generates reset links, it produces plain HTTP URLs even for HTTPS connections unless an administrator has explicitly enabled the
CVE-2026-48901 describes a vulnerability in the `InputFilter::getInstance()` method where a security-sensitive parameter was omitted from the instance cache key construction. This flaw could allow improper cache reuse across different security contexts, potentially leading to security boundary violations in input filtering operations. The vulnerability was published on 2026-05-26 and is currently undergoi [truncated]
A medium-severity improper access control vulnerability in Joomla's scheduler component (com_scheduler) allows low-privileged users to modify task types of existing scheduled tasks. The flaw stems from incorrect access checks in the task type editing functionality. Affected versions include Joomla 4.1.0 through 5.4.5 and 6.0.0 through 6.1.0. The vulnerability was disclosed by Joomla's security team on May [truncated]
A medium-severity improper access control vulnerability in Joomla's com_users batch task allows authenticated users with limited privileges to escalate their permissions. The flaw exists in the sample data plugins component where access checks are incorrectly implemented during batch operations. Joomla versions 4.0.0 through 5.4.5 and 6.0.0 through 6.1.0 are affected. The vulnerability was disclosed by th [truncated]
An improper access control vulnerability in Joomla's com_users batch task allows unauthenticated attackers to escalate privileges. The flaw exists in the batch processing functionality of the user management component, where missing authorization checks permit unauthorized privilege modifications. Affected versions include Joomla 4.0.0 through 5.4.5 and 6.0.0 through 6.1.0. The vulnerability was disclosed [truncated]
A high-severity authentication bypass vulnerability in Joomla Core allows attackers to circumvent multi-factor authentication (MFA) checks due to insufficient state validation. The flaw, published 2026-05-26, carries a CVSS 4.0 score of 8.2 (HIGH severity) with a vector indicating network attack vector, low attack complexity, no privileges required, and high impact to integrity. The vulnerability stems fr [truncated]
CVE-2026-48896 is a HIGH severity vulnerability (CVSS 8.2) in Joomla! Core related to insufficient state checks that enable two-factor authentication (2FA) bypass. The vulnerability was published on 2026-05-26 and is currently undergoing analysis by NVD. The issue stems from improper authentication (CWE-287) where state validation failures allow attackers to circumvent MFA protections. Joomla! has publish [truncated]
A path traversal vulnerability exists in the com_media files API endpoint due to improper validation of the search parameter. The vulnerability allows an attacker with high privileges to read arbitrary files on the system. The issue is rated MEDIUM severity with a CVSS score of 5.9. The vulnerability was disclosed by the Joomla! Security Strike Team and affects Joomla! CMS core. The weakness is classified [truncated]
An improper validation of user-supplied input leads to a local file inclusion vulnerability.
An improper access control vulnerability in Joomla's com_config webservice endpoints allows unauthorized access to configuration management functions. The vulnerability stems from insufficient authorization checks on webservice API endpoints, enabling authenticated users with elevated privileges to bypass intended access controls. The CVSS 4.0 vector indicates network attack vector with low attack complex [truncated]
## Summary CVE-2026-35222 is a SQL injection vulnerability in the `com_tags` component of Joomla! CMS. The flaw stems from improperly validated `order` clauses, allowing authenticated attackers to manipulate SQL queries. The vulnerability is rated **MEDIUM** severity with a CVSS score of **6.9** (CVSS 4.0 vector: `AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N`). ## Affected Product - **Vendor:** Joomla! (identi [truncated]
A SQL injection vulnerability exists in the Joomla com_finder component due to improperly constructed filter clauses in search queries. The vulnerability requires authenticated access and has been assigned a CVSS 4.0 score of 6.9 (MEDIUM severity). The issue was disclosed by the Joomla Security Centre on May 6, 2026, and subsequently published in the NVD on May 26, 2026. The vulnerability is classified as [truncated]
A Cross-Site Request Forgery (CSRF) vulnerability exists in the admin user activation endpoint of the Joomla com_users component. The flaw stems from missing CSRF token validation, allowing an attacker to trick an authenticated administrator into performing unintended user activation actions via a malicious web page or link. The CVSS 4.0 vector indicates network attack vector with low attack complexity, r [truncated]
A stored cross-site scripting (XSS) vulnerability exists in Joomla's com_content component due to insufficient output escaping in readmore links. The flaw, assigned CVSS 4.0 score 6.9 (Medium), allows an authenticated attacker with high privileges to inject malicious scripts that execute in the context of users clicking affected readmore links. The vulnerability was disclosed by the Joomla Security Strike [truncated]
A stored cross-site scripting (XSS) vulnerability exists in the content history component of Joomla! Core. The flaw stems from insufficient output escaping, allowing an attacker with high privileges to inject malicious scripts that execute in the context of another user's browser session. The vulnerability was disclosed by the Joomla! Security Strike Team and is currently undergoing analysis in the Nation [truncated]
A stored cross-site scripting (XSS) vulnerability exists in the multilingual associations component (com_associations) of Joomla! CMS due to insufficient output escaping. The vulnerability allows authenticated administrative users to inject malicious scripts that execute in the context of other users' browsers. The CVSS 4.0 vector indicates network attack vector with low attack complexity, requiring high [truncated]
CVE-2026-25900 is a cross-site scripting (XSS) vulnerability in Joomla core feed modules, published 2026-05-26. The vulnerability stems from lack of output escaping, allowing crafted input to execute scripts in a victim's browser. CVSS 4.0 vector indicates network attack vector with low attack complexity, requiring high privileges and user interaction, with high confidentiality impact and low integrity/av [truncated]